Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/amrutprabhu/keycloak-spring-cloud-gateway-and-resource-server
https://github.com/amrutprabhu/keycloak-spring-cloud-gateway-and-resource-server
keycloak oauth2 oidc openid-connect resource-server spring-boot spring-security spring-security-oauth2
Last synced: 3 months ago
JSON representation
- Host: GitHub
- URL: https://github.com/amrutprabhu/keycloak-spring-cloud-gateway-and-resource-server
- Owner: amrutprabhu
- Created: 2021-08-26T18:46:04.000Z (over 3 years ago)
- Default Branch: main
- Last Pushed: 2022-08-10T21:47:25.000Z (over 2 years ago)
- Last Synced: 2024-10-12T12:51:41.699Z (3 months ago)
- Topics: keycloak, oauth2, oidc, openid-connect, resource-server, spring-boot, spring-security, spring-security-oauth2
- Language: Java
- Homepage: https://refactorfirst.com
- Size: 43 KB
- Stars: 64
- Watchers: 2
- Forks: 37
- Open Issues: 2
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# Spring Cloud Gateway with Keycloak Integration using OAuth2 OpenId Connect (OIDC)
In this project I am integrating Keycloak with spring cloud gateway as a client using Oauth2 OpenId Connect (OIDC).
We create a realm in keycloak containing a client and set of users. We then integrate the client configuration in our spring cloud gateway application and then authenticate using OpenId Connect.
You can read about this in detail on how to integrate Keycloak with Spring Cloud Gateway on my website [RefactorFirst.com](https://refactorfirst.com)
## Details Useful for debugging OAuth2 flow
1. To debug issues, you can set the logging to debug using these settings
```properties
logging:
level:
org:
springframework:
security: DEBUG
```
2. You can find the list of common OAuth2 providers like Okta, Google, etc in this class.
```java
org.springframework.security.config.oauth2.client.CommonOAuth2Provider
```
3. You can find the start of the configuration from this class for all client registrations.
```java
org.springframework.boot.autoconfigure.security.oauth2.client.OAuth2ClientPropertiesRegistrationAdapter#getClientRegistrations
```
4. Your OAuth2 client properties are found in this class
```java
org.springframework.boot.autoconfigure.security.oauth2.client.OAuth2ClientProperties
```
5. The place where it stores incoming resource request to serve once the authentication is successful is in this class
```java
org.springframework.security.web.server.savedrequest.WebSessionServerRequestCache.saveRequest
```
Export Keyclock Config.
```shell
docker exec -it 22dadc3be0dd /opt/keycloak/bin/kc.sh export --dir /tmp/ --users realm_file --realm My-Realm
```
Clients can trigger login with url :
```
oauth2/authorization/keycloak-spring-gateway-client
```